That option only logs denied packets, and not allowed packets which is arguably the more important information from an auditing perspective. -- Later, Darin On Mon, Aug 26, 2019 at 5:09 PM Carlos E. R. <robin.listas@telefonica.net> wrote:
On 26/08/2019 18.31, Darin Perusich wrote:
One "feature" from SuSEfirewall2 I'd like to see incorporated into firewalld are the logging features that were enabled by default in SuSEfirewall2. Honestly having the ability to see what's being blocked/allowed is of primary importance if one has decided to enabled the firewall on a system, how else can one determine whether it's the firewall that's allowing/blocking a connection or if it's something else like a service not running. This is something I've been wanted to look into but simply haven't had the time.
firewall-config
Menu "options", entry "Change log-denied"
-- Cheers / Saludos,
Carlos E. R. (from 15.0 x86_64 at Telcontar)
-- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org